• Facebook
  • RSS Feed
  • Instagram
  • LinkedIn
  • Twitter
Oct 022012
 

I just spotted this update on Cert’s web site:

http://www.cert.gov.om/advisory_details.aspx?alert=300

and

http://www.kb.cert.org/vuls/id/118913

Essentially Enterprise Vault uses the Outside-In technology from Oracle to convert content to HTML (for indexing).  This technology from Oracle has a security vulnerability in it, which Oracle have fixed.

Symantec’s response is in this post:

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120928_00

 

Symantec Response

Symantec has released an update to Symantec’s Enterprise Vault product suite to address these issues. Symantec recommends all Symantec Enterprise Vault product suite customers upgrade to Symantec Enterprise Vault 10.0.2 to address any possibility of threats of this nature.

 

Symantec Enterprise Vault 10.0.2 is currently available through normal update channels

 

It’s another good reason to upgrade to Enterprise Vault 10.0.2

If you enjoyed this post, please consider leaving a comment or subscribing to the RSS feed to have future articles delivered to your feed reader.

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)